“Spider-Man: No Way Home” Torrents: XMR Miner in Disguise | WhoisXML API

Threat Reports

Illegally Streaming “Spider-Man: No Way Home” Could Be Hazardous to Your Computer

While watching ‘Spider-Man: No Way Home’ in movie theaters could pose health risks considering the ongoing pandemic, downloading torrents of or illegally streaming the movie can be hazardous to your computer’s health too. Researchers discovered that torrent files could be XMR Miner malware in disguise1.

We subjected related malicious web properties to IP and DNS searches to identify more connected artifacts. We also looked for more domains and subdomains that could be weaponized for future attacks.

Our analysis allowed us to build detailed threat research materials revealing that:

  • Spider-Man: No Way Home torrent files could redirect users to IP addresses and domains identified as XMR Miner hosts.
  • Hundreds of domains were hosted on IP addresses tied to XMR Miner.
  • Hundreds of domains and subdomains containing strings related to the movie could easily serve as additional malware hosts if threat actors abuse them.

Download the threat research materials now to access the complete list of identified artifacts used to conduct additional enrichment and threat analysis as well as trend identification.


  • [1] https://www.cpomagazine.com/cyber-security/torrent-malware-disguised-as-spider-man-no-way-home-download-contains-a-persistent-monero-crypto-miner/
Try our WhoisXML API for free
Get started